Crypto users are facing a new security threat via fake Cloudflare CAPTCHA pages. The attack installs an infostealer built to siphon crypto wallet data.

TeamPCP strikes again, with almost identical code to LiteLLM.

UNC1069 compromised Axios 1.14.1 and 0.30.4 via social engineering, impacting 100M weekly downloads and exposing supply ...

Rowhammer attacks have been around since 2014, and mitigations are in place in most modern systems, but the team at gddr6.fail has found ways to apply the attack to current-generation GPUs.

Solo hacker used AI to breach 9 Mexican government agencies, exposing 195 million citizens' data in hours instead of weeks.

A single unauthenticated connection gives attackers a full shell; credential theft observed in under three minutes on honeypot servers.

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...

Four vulnerabilities in CrewAI could be chained together via prompt injection for sandbox escape, remote code execution, and ...

North Korean hackers pushed out malicious updates to a popular open source project by hacking a top developer's computer in a ...

Could powerful AI models like Anthropic's Mythos give cybercriminals and other bad actors a roadmap for exploiting tech ...